Unrated severityNVD Advisory· Published Aug 14, 2007· Updated Apr 23, 2026

CVE-2007-4335

Description

Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial of service (service crash) via format string specifiers in certain unexpected commands, which trigger a crash during error logging.

Affected products

Qbik/Wingate3 versions
cpe:2.3:a:qbik:wingate:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:qbik:wingate:*:*:*:*:*:*:*:*range: <=6.2.1
- cpe:2.3:a:qbik:wingate:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:qbik:wingate:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/26412nvdPatchVendor Advisory
www.securityfocus.com/bid/25272nvdPatch
securityreason.com/securityalert/3001nvd
www.harmonysecurity.com/HS-A007.htmlnvd
www.securityfocus.com/archive/1/476011/100/0/threadednvd
www.securityfocus.com/bid/25303nvd
www.vupen.com/english/advisories/2007/2859nvd
www.wingate.com/news.phpnvd
exchange.xforce.ibmcloud.com/vulnerabilities/35950nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000